Lucene search

K

RedHat Update for kernel RHSA-2013:0911-01

🗓️ 13 Jun 2013 00:00:00Reported by Copyright (C) 2013 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 24 Views

RedHat Update for kernel RHSA-2013:0911-01. Fixes KVM initialization flaw, privilege escalation, and double free vulnerability

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
OpenVAS
CentOS Update for kernel CESA-2013:0911 centos6
13 Jun 201300:00
openvas
OpenVAS
RedHat Update for kernel RHSA-2013:0911-01
13 Jun 201300:00
openvas
OpenVAS
CentOS Update for kernel CESA-2013:0911 centos6
13 Jun 201300:00
openvas
OpenVAS
Oracle: Security Advisory (ELSA-2013-0911)
6 Oct 201500:00
openvas
OpenVAS
Ubuntu: Security Advisory (USN-1939-1)
12 Sep 201300:00
openvas
OpenVAS
Ubuntu Update for linux USN-1939-1
12 Sep 201300:00
openvas
OpenVAS
Ubuntu Update for linux-ec2 USN-1940-1
12 Sep 201300:00
openvas
OpenVAS
Ubuntu: Security Advisory (USN-1940-1)
12 Sep 201300:00
openvas
OpenVAS
Oracle: Security Advisory (ELSA-2013-2534)
6 Oct 201500:00
openvas
OpenVAS
SUSE: Security Advisory (SUSE-SU-2014:0287-1)
9 Jun 202100:00
openvas
Rows per page
# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.871007");
  script_version("2024-03-21T05:06:54+0000");
  script_tag(name:"last_modification", value:"2024-03-21 05:06:54 +0000 (Thu, 21 Mar 2024)");
  script_tag(name:"creation_date", value:"2013-06-13 10:05:27 +0530 (Thu, 13 Jun 2013)");
  script_cve_id("CVE-2013-1935", "CVE-2013-1943", "CVE-2013-2017");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-08-03 15:58:00 +0000 (Mon, 03 Aug 2020)");
  script_name("RedHat Update for kernel RHSA-2013:0911-01");

  script_xref(name:"RHSA", value:"2013:0911-01");
  script_xref(name:"URL", value:"https://www.redhat.com/archives/rhsa-announce/2013-June/msg00008.html");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'kernel'
  package(s) announced via the referenced advisory.");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms", re:"ssh/login/release=RHENT_6");
  script_tag(name:"affected", value:"kernel on Red Hat Enterprise Linux Desktop (v. 6),
  Red Hat Enterprise Linux Server (v. 6),
  Red Hat Enterprise Linux Workstation (v. 6)");
  script_tag(name:"solution", value:"Please Install the Updated Packages.");
  script_tag(name:"insight", value:"The kernel packages contain the Linux kernel, the core of any Linux
  operating system.

  This update fixes the following security issues:

  * A flaw was found in the way KVM (Kernel-based Virtual Machine)
  initialized a guest's registered pv_eoi (paravirtualized end-of-interrupt)
  indication flag when entering the guest. An unprivileged guest user could
  potentially use this flaw to crash the host. (CVE-2013-1935, Important)

  * A missing sanity check was found in the kvm_set_memory_region() function
  in KVM, allowing a user-space process to register memory regions pointing
  to the kernel address space. A local, unprivileged user could use this flaw
  to escalate their privileges. (CVE-2013-1943, Important)

  * A double free flaw was found in the Linux kernel's Virtual Ethernet
  Tunnel driver (veth). A remote attacker could possibly use this flaw to
  crash a target system. (CVE-2013-2017, Moderate)

  Red Hat would like to thank IBM for reporting the CVE-2013-1935 issue and
  Atzm WATANABE of Stratosphere Inc. for reporting the CVE-2013-2017 issue.
  The CVE-2013-1943 issue was discovered by Michael S. Tsirkin of Red Hat.

  This update also fixes several bugs and adds one enhancement. Documentation
  for these changes will be available shortly from the Technical Notes
  document linked to in the References section.

  Users should upgrade to these updated packages, which contain backported
  patches to correct these issues and add this enhancement. The system must
  be rebooted for this update to take effect.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release) exit(0);

res = "";

if(release == "RHENT_6")
{

  if ((res = isrpmvuln(pkg:"kernel", rpm:"kernel~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debug-debuginfo", rpm:"kernel-debug-debuginfo~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debuginfo", rpm:"kernel-debuginfo~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debuginfo-common-i686", rpm:"kernel-debuginfo-common-i686~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-headers", rpm:"kernel-headers~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"perf", rpm:"perf~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"perf-debuginfo", rpm:"perf-debuginfo~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"python-perf-debuginfo", rpm:"python-perf-debuginfo~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-firmware", rpm:"kernel-firmware~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"kernel-debuginfo-common-x86_64", rpm:"kernel-debuginfo-common-x86_64~2.6.32~358.11.1.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
13 Jun 2013 00:00Current
7.6High risk
Vulners AI Score7.6
CVSS27.8
EPSS0.021
24
.json
Report